3 matches found
UBUNTU-CVE-2024-28831
Stored XSS in some confirmation pop-ups in Checkmk before versions 2.3.0p7 and 2.2.0p28 allows Checkmk users to execute arbitrary scripts by injecting HTML elements into some user input fields that are shown in a confirmation pop-up...
WPB Show Core < 2.7 - Reflected XSS
Description The plugin does not sanitise and escape the parameters before outputting it back in the response of an unauthenticated request, leading to a Reflected Cross-Site Scripting Open an HTML file containing the following: alert/XSS/' / var form1 = document.getElementById'hack'; form1.submit...
CVE-2019-19285
A vulnerability has been identified in XHQ All Versions 6.1. The web interface could allow injections that could lead to XSS attacks if unsuspecting users are tricked into accessing a malicious link...